Download OpenAPI specification:Download
Configure Mosaic SSO Service to streamline login for users. Create and manage SSO clients group to control your SSO login experience.
Creates a new SSO clients group.
Required permissions: sso-service:edit.
{- "name": "My Clients Group",
- "description": "string",
- "configuration": {
- "journey": "string",
- "allowSilentLogin": true,
- "sessionTimeout": 0,
- "sessionTimeoutGranularity": "seconds"
}
}{- "result": {
- "app_id": "string",
- "tenant_id": "string",
- "app_name": "string",
- "app_description": "string",
- "client_type": "web",
- "logo": "string",
- "client_id": "string",
- "client_display_name": "string",
- "client_description": "string",
- "client_secret": "string",
- "redirect_uris": [
- "string"
], - "login_preferences": {
- "auth_methods": {
- "google": {
- "clientId": "string",
- "clientSecret": "string",
}, - "facebook": {
- "clientId": "string",
- "clientSecret": "string",
}, - "email": {
- "expiresIn": 0,
- "linksPerUser": 0,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}
}, - "email_otp": {
- "expiresIn": 0,
- "lockoutDuration": 15,
- "maxFailures": 3,
- "codeLength": 6,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}
}, - "apple": {
- "clientId": "string",
- "clientSecret": "string",
- "appleTeamId": "string",
- "keyId": "string"
}, - "sms": {
- "expiresIn": 0,
- "lockoutDuration": 15,
- "maxFailures": 3,
- "codeLength": 6
}, - "webauthn_api": {
- "rpId": "string",
- "rpOrigin": "string",
- "rpOrigins": [
- "string"
], - "replaceExistingPasskey": false,
- "maxFailures": 3,
- "lockoutDuration": 15,
- "failuresExpireIn": 15
}, - "line": {
- "clientId": "string",
- "clientSecret": "string",
}, - "password": {
- "resetValidityMinutes": 5,
- "passwordComplexity": 5,
- "passwordMinLength": 14,
- "blockPreviousPasswords": 0,
- "checkHibp": false,
- "checkDictionary": false,
- "passwordExpiresIn": 90,
- "ignoreExpiration": false,
- "maxPasswordFailures": 5,
- "passwordSuspensionDuration": 15,
- "failuresExpireIn": 15,
- "tempPasswordValidityHours": 24,
- "message": {
- "primaryColor": "string",
- "from": "string",
- "subject": "string"
}, - "requireMFA": false,
- "codeLength": 6,
- "notifyOnPasswordUpdate": false
}, - "totp": {
- "algorithm": "sha1",
- "digits": 6,
- "period": 30,
- "window": 2,
- "issuer": "My Company",
- "maxFailures": 3,
- "lockoutDuration": 15
}, - "push": {
- "apn": {
- "key": "string",
- "keyId": "string",
- "teamId": "string",
- "bundle": "string",
- "isProduction": true
}, - "fcm": {
- "key": { }
}
}, - "tiktok": {
- "clientId": "string",
- "clientSecret": "string",
}, - "pin_authenticator": {
- "maxFailures": 3,
- "lockoutDuration": 15,
- "failuresExpireIn": 15
}
}
}, - "created_at": "2019-08-24T14:15:22Z",
- "created_by": "string",
- "updated_at": "2019-08-24T14:15:22Z",
- "resources": [
- "string"
], - "service_providers": [
- "string"
], - "authenticator_preferences": {
- "is_centralized": false,
}, - "allow_public_signup": true,
- "client_auth_method": "client_secret_basic",
- "pkce": "enforcePkceInsteadOfClientCredentials",
- "device_authorization": {
- "enabled": false,
}, - "password_sharing_group_id": "string",
- "invite_client_id": "string",
- "subdomain": "myapp",
- "invite_member_email_expiration_minutes": 2880,
- "custom_domain": {
- "domain": "myapp.com",
- "updated_at": "2019-08-24T14:15:22Z",
- "status": "pending",
- "error": "string"
}, - "external_communication": {
- "language": "en"
}
}
}Retrieves a list of all clients groups.
Required permissions: sso-service:read.
{- "result": [
- {
- "id": "string",
- "name": "string",
- "description": "string",
- "configuration": {
- "journey": "string",
- "sessionTimeout": 0,
- "allowSilentLogin": true,
- "sessionTimeoutGranularity": "seconds"
}, - "clients": [
- {
- "client_id": "string",
- "client_secret": "string",
- "client_type": "web",
- "name": "string",
- "pkce": "enforcePkceInsteadOfClientCredentials",
- "description": "string",
- "resources": [
- "string"
], - "created_at": "2019-08-24T14:15:22Z",
- "updated_at": "2019-08-24T14:15:22Z",
- "redirect_uris": [
- "string"
], - "authentication_protocol": "oidc",
- "is_third_party": true,
- "optional_acs_url": true,
- "sp_acs_url": "string",
- "sp_entity_id": "string",
- "metadata_url": "string",
- "sso_url": "string",
- "entity_id": "string",
- "x509_certificate": "string",
- "default_custom_claims": [
- "tid"
]
}
]
}
]
}Retrieves a clients group by its ID. The clients group ID is a unique identifier for a clients group.
Required permissions: sso-service:read.
SSO Service Not Found
{- "result": {
- "id": "string",
- "name": "string",
- "description": "string",
- "configuration": {
- "journey": "string",
- "sessionTimeout": 0,
- "allowSilentLogin": true,
- "sessionTimeoutGranularity": "seconds"
}, - "clients": [
- {
- "client_id": "string",
- "client_secret": "string",
- "client_type": "web",
- "name": "string",
- "pkce": "enforcePkceInsteadOfClientCredentials",
- "description": "string",
- "resources": [
- "string"
], - "created_at": "2019-08-24T14:15:22Z",
- "updated_at": "2019-08-24T14:15:22Z",
- "redirect_uris": [
- "string"
], - "authentication_protocol": "oidc",
- "is_third_party": true,
- "optional_acs_url": true,
- "sp_acs_url": "string",
- "sp_entity_id": "string",
- "metadata_url": "string",
- "sso_url": "string",
- "entity_id": "string",
- "x509_certificate": "string",
- "default_custom_claims": [
- "tid"
]
}
]
}
}Updates an existing clients group. The clients group ID is a unique identifier for a clients group.
Required permissions: sso-service:edit.
{- "name": "My Clients Group",
- "description": "string",
- "configuration": {
- "journey": "string",
- "allowSilentLogin": true,
- "sessionTimeout": 0,
- "sessionTimeoutGranularity": "seconds"
}
}{ }Deletes a client and removes it from the SSO client group.
Required permissions: sso-service:edit, sso-service:delete.
{- "message": "string",
- "error_code": 404
}